556019e4a2a2a6c1ef8c3e412cd7a9e9_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

556019e4a2a2a6c1ef8c3e412cd7a9e9_JaffaCakes118
Size

635KB
MD5

556019e4a2a2a6c1ef8c3e412cd7a9e9
SHA1

8bf9832715c3abbb7fa53c8291874f44ba0c67d0
SHA256

b23ac7750b9d02ce34e729fc972ab938b837a1642b3bd5629f4a3cd5ffe7a51f
SHA512

7f81b50fd38f8e23ecbb68c64eaf591d6089de1176c80551396b798b3921251975e619cf4524273f6d45504a2159e3f4b4b0dc01b124114339c544ba9bdd2371
SSDEEP

12288:O+hq9C0ISvFLituOI37ddCcA5hW0HhfgZcmp:OF5ISdLic37sjVuZJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
556019e4a2a2a6c1ef8c3e412cd7a9e9_JaffaCakes118

Files

556019e4a2a2a6c1ef8c3e412cd7a9e9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

78ac9cf69704ccce3e28824db68f615f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

PlaySoundA
mciSendCommandA

kernel32

HeapReAlloc
HeapSize
GetCPInfo
GetACP
GetOEMCP
TerminateProcess
VirtualFree
VirtualAlloc
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
HeapDestroy
HeapCreate
RaiseException
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
SetStdHandle
IsBadReadPtr
IsBadWritePtr
GetCommandLineA
ExitProcess
GetThreadLocale
GetLocaleInfoA
GetLocaleInfoW
CompareStringA
CompareStringW
SetEnvironmentVariableA
GlobalAddAtomA
CloseHandle
GlobalDeleteAtom
lstrcmpiA
GetCurrentThread
GetCurrentThreadId
lstrcmpA
GetModuleFileNameA
lstrlenA
lstrcatA
FindResourceA
LoadResource
LockResource
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
HeapAlloc
GetStartupInfoA
GetModuleHandleA
GetTimeZoneInformation
GetLocalTime
GetSystemTime
FileTimeToLocalFileTime
HeapFree
RtlUnwind
SetErrorMode
FileTimeToSystemTime
LocalFileTimeToFileTime
SystemTimeToFileTime
GetProcessVersion
GetFileSize
GetVersionExA
GetPrivateProfileStringA
GetCurrentDirectoryA
WritePrivateProfileStringA
GlobalFlags
GetPrivateProfileIntA
SizeofResource
InterlockedIncrement
MultiByteToWideChar
WideCharToMultiByte
TlsSetValue
TlsGetValue
LocalReAlloc
GlobalHandle
GlobalReAlloc
LocalAlloc
TlsAlloc
LocalFree
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetShortPathNameA
InitializeCriticalSection
SetLastError
IsBadCodePtr
GetStringTypeExA
GetVolumeInformationA
GetProfileStringA
FindFirstFileA
FindClose
LoadLibraryA
GetProcAddress
FreeLibrary
DeleteFileA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
GetLastError
InterlockedDecrement
MulDiv
lstrcpyA
GlobalGetAtomNameA
GetDiskFreeSpaceA
GetFullPathNameA
GetTempFileNameA
GetFileTime
SetFileTime
lstrcpynA
GetFileAttributesA
GetVersion
GetStdHandle
GetFileType
SetUnhandledExceptionFilter

user32

ShowWindow
IsIconic
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
ReleaseCapture
GetDesktopWindow
DestroyMenu
LoadMenuA
SetMenu
ReuseDDElParam
UnpackDDElParam
BringWindowToTop
GetDC
ReleaseDC
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
CharUpperA
GetClassNameA
PtInRect
ClientToScreen
InsertMenuA
GetMenuStringA
LoadCursorA
GetSysColorBrush
LoadStringA
DestroyIcon
FindWindowA
OffsetRect
IntersectRect
InflateRect
LoadIconA
SendDlgItemMessageA
SystemParametersInfoA
MapWindowPoints
GetSysColor
SetFocus
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetClientRect
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
ScreenToClient
ScrollWindow
SetScrollInfo
ShowScrollBar
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsDialogMessageA
SetWindowTextA
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenuItemCount
GetMenuItemID
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
DefWindowProcA
CreateWindowExA
SetPropA
UnhookWindowsHookEx
SetForegroundWindow
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetWindow
GetWindowRect
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
GetFocus
GetMessageA
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
GetCursorPos
SetWindowsHookExA
MessageBoxA
SetCursor
ShowOwnedPopups
PostMessageA
PostQuitMessage
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetWindowLongA
GetDlgItem
IsWindowEnabled
SendMessageA
DeleteMenu
GetSystemMetrics
CheckMenuItem
MessageBeep
RedrawWindow
KillTimer
InvalidateRect
UpdateWindow
GetParent
GetMenu
GetSubMenu
EnableMenuItem
PeekMessageA
TranslateMessage
DispatchMessageA
SetTimer
LoadBitmapA
EnableWindow
IsChild
GetCapture
GetForegroundWindow
GetLastActivePopup
ExcludeUpdateRgn
WindowFromPoint
UnregisterClassA
HideCaret
ShowCaret
IsWindowUnicode
DrawFocusRect
DefDlgProcA
CharNextA

gdi32

SetStretchBltMode
SelectPalette
BitBlt
CreateCompatibleDC
CreateRectRgn
CreateBitmap
SetTextColor
SetBkColor
GetObjectA
DeleteDC
SaveDC
RestoreDC
GetStockObject
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
SelectClipRgn
IntersectClipRect
DeleteObject
SelectObject
GetDeviceCaps
CreateSolidBrush
PtVisible
TextOutA
ExtTextOutA
RectVisible
GetTextExtentPointA
Escape
PatBlt
CreateDIBitmap
RealizePalette
CreatePalette

comdlg32

GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegCloseKey
RegEnumKeyA
RegSetValueA
RegCreateKeyA
RegDeleteValueA
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
RegDeleteKeyA
RegQueryValueA
GetFileSecurityA
RegQueryValueExA
RegOpenKeyA
SetFileSecurityA

shell32

SHGetFileInfoA
ExtractIconA
DragQueryFileA
DragFinish

comctl32

ord17
ImageList_Destroy

Sections

.text
Size: 179KB - Virtual size: 178KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 618KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 388KB - Virtual size: 404KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adate
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

78ac9cf69704ccce3e28824db68f615f

Headers

File Characteristics

Imports

winmm

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

Sections

.text Size: 179KB - Virtual size: 178KB

.rdata Size: 27KB - Virtual size: 27KB

.data Size: 17KB - Virtual size: 618KB

.idata Size: 8KB - Virtual size: 8KB

.rsrc Size: 388KB - Virtual size: 404KB

.adate Size: 13KB - Virtual size: 13KB

.text
Size: 179KB - Virtual size: 178KB

.rdata
Size: 27KB - Virtual size: 27KB

.data
Size: 17KB - Virtual size: 618KB

.idata
Size: 8KB - Virtual size: 8KB

.rsrc
Size: 388KB - Virtual size: 404KB

.adate
Size: 13KB - Virtual size: 13KB